Computer Security

Search:Vulnerability:29.11.2004
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



KDE SMB share link cleartext password
Published:29.11.2004
Source:FULL-DISCLOSURE
SecurityVulns ID:4222
Type:local
Level:5/10
Description:SMB password is stored cleartext if desktop shortcut is created.
Affected:KDE : KDE 3.2
 KDE : KDE 3.3
 KDE : KDE 3.4
Original documentdocumentDaniel Fabian, [Full-Disclosure] Password Disclosure for SMB Shares in KDE's Konqueror (29.11.2004)
Discuss:Read or add your comments to this news (0 comments)

CGI bugs
updated since 29.11.2004
Published:04.12.2004
Source:
SecurityVulns ID:4223
Type:remote
Level:5/10
Affected:AHG : EZshopper 3.0
 ADVANCEDGUESTBOO : Advanced Guestbook 2.3
 NUKEDKLAN : Nuked-KlaN 1.4
 NUKEDKLAN : Nuked-KlaN 1.5
 S9Y : Serendipity 0.7
 INSITE : InMail
 INSITE : inShop
 HITACHI : Groupmax World Wide Web 2
 HITACHI : Groupmax World Wide Web 3
 HITACHI : Groupmax World Wide Web 5
 HITACHI : Groupmax World Wide Web 6
 VERISIGN : Payflow Link
 IB-IA : IberAgents 1.2
 IPCOP : IPCop 1.4
 BLOGTORRENT : Blogtorrent 0.8
 PHPROJEKT : PHPROJEKT 4.2
 GLOBALMOXIE : Big Medium 1.3
 APACHE : Jakarta Lucene 1.4
Original documentdocumentSECUNIA, [SA13360] Jakarta Lucene "results.jsp" Cross-Site Scripting Vulnerability (04.12.2004)
 documentSECURITEAM, [UNIX] AHG EZshopper loadpage.cgi Directory Traversal (.|./ Attack) (04.12.2004)
 documentEmile van Elen, Advanced Guestbook (04.12.2004)
 documentSECUNIA, [SA13358] Big Medium Unspecified Script Upload Vulnerability (02.12.2004)
 documentSECUNIA, [SA13357] Serendipity "searchTerm" Cross-Site Scripting Vulnerability (02.12.2004)
 documentSECUNIA, [SA13355] PHProjekt Unspecified "setup.php" Security Bypass Vulnerability (02.12.2004)
 documentSteve Kemp, Blog Torrent preview 0.8 - arbitary file download (02.12.2004)
 documentKurczaba Associates advisories, [KA Advisory 0411291] IPCop Cross Site Scripting Vulnerability in "proxylog.dat" (02.12.2004)
 documentSECUNIA, [SA13330] IberAgents Clear Text User Credential Disclosure (30.11.2004)
 documentM. Shirk, [SHK-001]Payflow Link Default Config may lead to Hidden Field Modification (30.11.2004)
 documentSECUNIA, [SA13321] Groupmax World Wide Web Cross-Site Scripting and Directory Traversal (29.11.2004)
 documentSECUNIA, [SA13188] Insite InMail / inShop Cross-Site Scripting Vulnerabilities (29.11.2004)
 documentSECUNIA, [SA13329] Nuked-Klan "Links" Module Script Insertion Vulnerability (29.11.2004)
Discuss:Read or add your comments to this news (0 comments)

Microsoft WINS server memory corruption
updated since 29.11.2004
Published:15.12.2004
Source:BUGTRAQ
SecurityVulns ID:4224
Type:remote
Level:6/10
Description:Bug in replication protocol handling allows code execution.
Affected:MICROSOFT : Windows NT 4.0 Server
 MICROSOFT : Windows 2000 Server
 MICROSOFT : Windows 2003 Server
Original documentdocumentMICROSOFT, Microsoft Security Bulletin MS04-045 Vulnerability in WINS Could Allow Remote Code Execution (870763) (15.12.2004)
 documentSECURITEAM, [NT] WINS Replication Remote Vulnerability (29.11.2004)
Files:Microsoft Windows Internet Name Service (WINS) Remote Heap Overflow Exploit
 Microsoft Security Bulletin MS04-045 Vulnerability in WINS Could Allow Remote Code Execution (870763)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru